In the Linux kernel, the following vulnerability has been resolved: xfrm: interface: fix use-after-free after changing collect_md.

In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: аn IPv6 MLD bookkeeping bug freed pmc->idev before it was used in ip6_mc_clear_src(), causing a use-after-free in the multicast code path. A remote attacker on the same L2 segment could potentially trigger a kernel crash via crafted MLD activity, leading to DoS.

In the Linux kernel, the following vulnerability has been resolved: idpf: convert control queue mutex to a spinlock.

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Use memcpy() for BIOS version.

In the Linux kernel, the following vulnerability has been resolved: do_change_type(): refuse to operate on unmounted/not ours mounts.

In the Linux kernel, the following vulnerability has been resolved: ublk: make sure ubq->canceling is set when queue is frozen.

In the Linux kernel, the following vulnerability has been resolved: tcp: Correct signedness in skb remaining space calculation.

In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6_CSUM.